Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nu5GafwIpNQzdQkRBhOGKzFPGsc.cer
File: nu5GafwIpNQzdQkRBhOGKzFPGsc.cer (raw, json)
Hash identifier: hYldo5WE2vIWBAiMcmxvvbYOIMD33n/1sOxE3ATv5i0=
Subject key identifier: 9E:EE:46:69:FC:08:A4:D4:33:75:09:11:06:13:86:2B:31:4F:1A:C7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01930B509FF10AB81F74ED3E6D8C1A20F7D5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6f/b9467c-84af-493a-9db9-4dd59c7c6305/1/nu5GafwIpNQzdQkRBhOGKzFPGsc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6f/b9467c-84af-493a-9db9-4dd59c7c6305/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 08 Nov 2024 10:27:33 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 60475
IP: 37.202.16.0/21
IP: 45.10.84.0/22
IP: 185.241.200.0/22
IP: 2a02:ff00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0b:50:9f:f1:0a:b8:1f:74:ed:3e:6d:8c:1a:20:f7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 8 10:27:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9eee4669fc08a4d4337509110613862b314f1ac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d6:6f:8b:c6:90:88:43:0f:22:92:98:6a:79:
c6:49:01:0e:0c:a4:c2:dc:b9:8c:da:be:76:51:78:
bc:2a:56:5f:ff:d7:5f:21:6d:0e:4a:a7:fd:d1:e5:
14:5f:ee:ca:98:4e:b1:3b:97:1d:83:9b:86:ae:bf:
13:d5:84:40:1b:2b:f6:5b:ac:79:03:a5:fa:3e:63:
4c:a7:92:a1:72:f3:fb:85:9f:3e:24:0c:72:a1:b2:
e7:dd:33:db:de:69:68:ce:37:77:2c:fb:ab:14:53:
70:b0:4b:24:a0:38:61:21:91:51:ff:3f:67:25:96:
df:2f:58:2d:53:54:a3:66:17:f1:0a:ab:55:11:26:
ff:66:56:03:81:42:d2:c5:f4:6e:2d:a4:27:34:fc:
95:d6:3e:9b:dd:35:40:fb:2b:d0:23:1c:2f:83:f6:
6c:3e:2d:d7:0d:db:d5:e7:01:ac:91:ff:2f:e4:3c:
9d:66:94:86:16:82:87:b1:fa:c5:3a:43:e5:fa:32:
7d:c8:e2:be:99:f7:35:37:ee:26:b9:1a:0c:19:ac:
ff:dc:fc:c4:cf:de:59:5b:4e:02:c7:a0:ae:6d:b9:
99:44:c1:cf:58:36:8d:22:6d:87:d7:75:7d:a8:1b:
5d:2c:65:d9:1a:17:d1:3a:91:da:52:e0:d4:c4:a4:
bc:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:EE:46:69:FC:08:A4:D4:33:75:09:11:06:13:86:2B:31:4F:1A:C7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b9467c-84af-493a-9db9-4dd59c7c6305/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b9467c-84af-493a-9db9-4dd59c7c6305/1/nu5GafwIpNQzdQkRBhOGKzFPGsc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.16.0/21
45.10.84.0/22
185.241.200.0/22
IPv6:
2a02:ff00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60475
Signature Algorithm: sha256WithRSAEncryption
05:1b:27:bf:8f:b6:e2:46:be:f4:e1:e7:68:e7:5f:ad:62:74:
c5:9c:e5:ec:9d:a4:ac:a8:82:a2:c0:46:fb:59:87:37:e5:6f:
74:87:74:0f:e8:7f:a1:14:14:3a:86:21:ef:b5:40:a9:a0:18:
b0:40:7d:bb:e8:d2:b5:63:90:45:84:cf:a8:63:54:01:6a:c1:
f2:a8:67:fe:fa:11:0e:97:10:22:ce:21:ec:4a:59:44:9d:e2:
ba:97:c4:5a:50:de:37:ce:dd:81:6c:e0:26:f9:07:99:1f:39:
fd:58:47:66:26:db:bf:fd:eb:39:f1:8c:8d:59:a0:22:4f:7d:
9f:67:1b:a7:c8:77:fa:0a:8c:e7:3b:74:3a:b4:b4:6e:6f:c6:
5a:37:f3:cf:32:8d:ee:a5:d4:ab:20:b5:99:fd:b0:ef:2e:fc:
bf:64:9f:2c:d3:78:56:5c:aa:c5:48:bd:df:6c:ff:79:78:9e:
7b:bf:f5:87:62:f4:a8:a1:f7:0a:ec:b1:90:3f:7b:2e:77:aa:
b3:01:6e:96:c4:85:b4:9d:dc:e0:89:4d:22:4e:97:61:2c:45:
af:76:b6:a4:84:1a:d7:49:cb:44:cd:6d:d2:dd:7c:48:85:80:
b4:4e:f8:d2:8f:f1:8d:94:f9:9e:8d:ea:83:3d:d3:5c:12:34:
31:51:6b:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:21:35 2024 by rpki-client on console-fra.rpki-client.org